In order to prevent users from posting image trackers intending to harvest IP addresses of other users, may you add a Content Security Policy?

Here is my CSP. It allows for youtube, amazon, gravatar, cdjns and a few other site content to be loaded.
If someone tried to embed an tracker pixel hosted on a site that is not included in my CSP, it will not show up and therefore wouldnt work. Something to think about.

Sanguine

0E800

Maybe I am the only one using Flarum for a private forum.
Without the landing page extension, I could not accomplish having a accessible front page that does not expose my forum content to non-members / spiders.

You do not need to register, but after you preview it on your laptop/desktop - try accessing the same site from your mobile device. (or if using Chrome: press F12, then press CTRL SHIFT M)

You will see what I mean.

On desktop:

On mobile: (5mb animated gif)

Felli

0E800 And ACP is pretty much the admin panel. As for the Landing Page extension, I had issues with it on FreeFlarum where it wouldn't allow me to access the backend anymore @Sanguine had to fix it on his end.

Felli

Sanguine

Removed Landing Page for new forums, until the cache invalidation issue has been resolved. Regarding the problem of bricking your Flarum by entering wrong CSS, I could perhaps make a "Reset all settings" button.

clarkwinkelmann

Sanguine Regarding the problem of bricking your Flarum by entering wrong CSS, I could perhaps make a "Reset all settings" button.

Sanguine

Felli So, to export your settings, you prefer to install an extension that allows exporting through http? It is possible, but perhaps a bit much work, as there are already tools that do that quite well without http (mysqldump).